Case Study: Visma achieves continuous, scalable protection of its expanding attack surface with Intigriti

How Visma uses Intigriti to protect an ever-expanding attack surface

Visma, a leading cloud software provider operating across 200+ companies with 6,000+ developers and ~40 acquisitions a year, faced a rapidly expanding and hard-to-inventory attack surface that automated scanners and periodic pentests couldn’t fully protect. To add the missing human layer to its Visma Security Program (VSP), Visma engaged Intigriti’s bug bounty platform.

Intigriti delivered a scalable, closely supported bug bounty program—private and public scopes, continuous onboarding, and a dedicated success manager—to complement automated testing and pentests. Visma met its goals for onboarding teams and sites, launched a Responsible Disclosure process, and processed over 3,000 submissions (98% valid), with more than 50% of findings being IDOR/access-control issues; the program also reduced time-to-fix and raised internal security awareness thanks to Intigriti’s platform and tailored hacker selection.

Visma

Ioana Piroska

Security Engineer & Bug Bounty Program Manager